Security Directory

S

Sooner

sooner.lu

59

Sooner is a Luxembourg-based streaming platform specializing in independent cinema, offering a curated selection of classics, European films, and award-winning international movies. The platform targets film lovers seeking niche and quality content through subscription plans and rental options. The business operates with a clear market position focusing on independent and European cinema, supported by a professional and consistent brand presence. Technically, the website leverages modern frameworks such as Next.js and Prismic CMS, with integrations for analytics and cookie compliance, indicating a mature digital infrastructure. Security posture is generally good with HTTPS enforced and cookie consent mechanisms in place; however, the absence of WHOIS data and security headers suggests areas for improvement. Overall, the platform presents a trustworthy and user-friendly experience, though domain transparency and explicit security policies could be enhanced to strengthen trust and compliance.

P

Push The Brand - Agence de communication

pushthebrand.com

55

Push The Brand is a French communication agency specializing in branding, advertising campaigns, media and digital strategy, print design, and event management. The company targets businesses seeking creative and comprehensive communication solutions. Their website showcases a portfolio of diverse clients and projects, indicating a solid market presence in the media sector. Technically, the website is built on WordPress with modern frameworks such as Bootstrap and uses popular analytics and marketing tools like Google Analytics and Google Tag Manager. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site uses HTTPS and implements GDPR-compliant cookie consent mechanisms, but lacks visible security headers and published security policies. The absence of WHOIS data for the domain is a concern and should be investigated further to confirm domain legitimacy. Overall, the website demonstrates a good level of digital maturity and business credibility but could improve in security transparency and contact information completeness.

K

Klimabündnis Österreich

klimabuendnis.at

49

Klimabündnis Österreich operates as the largest municipal climate protection network in Austria, connecting over 2,000 municipalities and cities across Europe with indigenous organizations in South America. The organization focuses on climate protection, climate justice, and promoting sustainable lifestyles through networking, education, and campaigns. The website is built on WordPress, leveraging modern SEO and cookie consent tools, and integrates analytics and user behavior tracking via Google Analytics and Hotjar. Security posture is strong with HTTPS enforcement and cookie consent management, though the absence of explicit privacy and terms of service pages indicates room for compliance improvement. Overall, the site presents a professional and trustworthy digital presence aligned with its non-profit mission.

E

EIT Health

eithealth.eu

65

EIT Health is a prominent EU-backed network focused on promoting innovation in healthcare across Europe. The organization facilitates collaboration among businesses, researchers, educators, and healthcare providers to develop impactful health solutions. Their website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistency. The target audience includes healthcare innovators, professionals, and European citizens interested in health advancements. Technically, the site is built on WordPress with modern libraries and tracking tools, optimized for performance and accessibility. Security posture is strong with HTTPS, security headers, and privacy compliance evident, though explicit security policies and incident response contacts are not published. Overall, the domain registration and website content align well, indicating a trustworthy and legitimate entity.

P

Pharow

pharow.com

63

Pharow is a French B2B SaaS platform specializing in lead generation and data enrichment for sales and marketing teams. It consolidates multiple data sources including intent data and business signals to provide segmented prospect lists enriched with professional emails and phone numbers. The platform integrates with popular CRMs like HubSpot and Pipedrive and outbound tools such as Lemlist and La Growth Machine, enabling seamless data export and synchronization. Pharow positions itself as a comprehensive and user-friendly solution for B2B prospecting in France. Technically, the website is built on Webflow CMS, leveraging modern web technologies and third-party services including Google Tag Manager, Crisp chat, Axeptio for cookie consent, and Plausible Analytics for privacy-focused tracking. The site is well-optimized for performance, mobile responsiveness, and SEO, with a professional design and clear navigation. Security-wise, the site enforces HTTPS and implements cookie consent mechanisms, but lacks visible security headers and explicit security or incident response policies. No WHOIS data is available for the domain, which raises some concerns about domain registration transparency, though the website content and integrations suggest a legitimate business. Overall, Pharow presents a mature and professional digital presence with strong business credibility and technical implementation. Recommendations include enhancing security headers, publishing a security policy, and improving domain registration transparency to bolster trust and compliance.

A

Audioboost

speakup.ai

60

SpeakUp Article, operated by Audioboost, is a specialized AI-driven platform that transforms written content into engaging audio experiences for publishers and content creators. It offers advanced AI voice synthesis, a customizable audio player, and monetization capabilities through dynamic ad insertion. The platform is positioned as a trusted solution with over 2.5 million monthly listeners and partnerships with notable publishers and institutions. Technically, the website leverages modern web frameworks such as React and Next.js, integrates Google Analytics and Tag Manager for tracking, and uses Iubenda for privacy compliance. The site is well-optimized for performance, accessibility, and SEO, providing a professional user experience. Security-wise, the site enforces HTTPS, uses reCAPTCHA on forms, and complies with GDPR and accessibility standards, though it lacks explicit security headers and a public security policy. Overall, the domain WHOIS data is unavailable, likely due to privacy protection, but the website's professionalism and trust signals indicate legitimacy.

W

Online Wunschliste erstellen • Wunschzettel ohne Registrierung

wishsite.de

60

wishsite.de is a German-language online wishlist platform that enables users to create and share wishlists for various occasions such as weddings, birthdays, Christmas, and baby parties. The service emphasizes ease of use, no registration requirement, and free access, targeting individuals who want a simple and effective way to communicate gift wishes. The platform enjoys a strong market presence with over one million fulfilled wishes and a high user recommendation rate, supported by user testimonials and a demo wishlist feature. Technically, the website leverages modern web technologies including JavaScript, jQuery, Google Tag Manager, and Bing Ads, hosted behind Cloudflare DNS services. The site is mobile-optimized and designed with accessibility and SEO best practices in mind. Security-wise, the site enforces HTTPS, uses CSRF tokens, and includes CAPTCHA challenges to prevent spam, but lacks visible security headers and published security policies. Privacy compliance is strong with GDPR-aligned policies and cookie consent mechanisms. Overall, wishsite.de presents a professional, trustworthy, and user-friendly service with moderate to strong security posture and good privacy practices.

K

KODA

kodabots.com

45

KODA is a technology company specializing in AI-powered communication automation solutions including chatbots, voicebots, and ticket automation. The company targets businesses aiming to enhance customer service, sales, and internal processes through conversational AI. Their market position is solidified by over 150 enterprise implementations and recognition in RPA awards. Technically, the website is built on WordPress with modern SEO and analytics tools, demonstrating digital maturity and good performance. Security posture is strong with HTTPS, domain transfer protection, and cookie consent management, though improvements like DNSSEC and security headers are recommended. Overall, the risk is low with no critical vulnerabilities detected, and the company maintains good privacy compliance and business credibility.

T

TIPADA-Shop

tipada-shop.de

55

TIPADA-Shop is a German-based e-commerce retailer specializing in plush toys, school articles, and gift items targeting families, children, and animal lovers. The website presents a professional and consistent brand image with a clear focus on providing themed gift ideas and accessories. The business model centers on online retail with free shipping offers and fast delivery from Germany, positioning itself as a niche player in the gift and toy market. The site integrates modern marketing and analytics tools such as Google Analytics 4, Google Ads, and Brevo, while maintaining GDPR compliance through a comprehensive consent management system. Technical infrastructure is based on the JTL Shop system, hosted on netcup servers, and employs standard web technologies including jQuery and Bootstrap.

W

Web357

web357.com

62

Web357 is a specialized technology company delivering premium Joomla! extensions and WordPress plugins aimed at enhancing website functionality, security, and performance. Established since 2010 and based in Cyprus, the company targets developers, digital agencies, and web professionals seeking reliable and professional web development tools. Their market position is supported by a strong user base of over 10,000 satisfied customers and positive verified testimonials. The website reflects a mature digital presence with modern technologies such as React and Next.js, and integrates analytics and user feedback tools like Google Analytics and Hotjar. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, though some improvements in security headers and incident response transparency are recommended. Privacy compliance is adequate with a comprehensive privacy policy, but lacks a cookie consent mechanism despite tracking scripts. Overall, Web357 presents a professional and trustworthy online presence with minor areas for enhancement in security and privacy practices.

D

Defiant

defiant.com

10

Defiant is a specialized cybersecurity company focused on WordPress security, offering products such as Wordfence firewall and malware scanner, incident response services, and customized security solutions for businesses with mission-critical WordPress installations. The company positions itself as a global leader in this niche, protecting over 4 million websites and employing a team of over 35 security professionals. Their business model revolves around software and managed security services tailored to WordPress environments. Technically, the website is built on WordPress, leveraging modern web technologies including jQuery, Google Tag Manager, Google Analytics, and HubSpot for marketing and analytics. The site is well-structured with good SEO practices and mobile optimization, although accessibility features could be improved. The presence of privacy and cookie policies, along with terms of use, indicates a mature approach to compliance. From a security perspective, the site enforces HTTPS and displays ISO 27001 certification, signaling a commitment to information security standards. However, the absence of security headers and a security.txt file suggests room for improvement in security best practices. The lack of WHOIS registration data is a notable anomaly that reduces trust in domain legitimacy, though the website content and external trust signals mitigate this concern somewhat. Overall, Defiant presents a professional and credible front with strong market positioning in WordPress security. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, improving accessibility, and resolving WHOIS data inconsistencies to strengthen trust and compliance.

C

Clovr.com

clovr.com

59

Clovr.com is a niche online platform specializing in providing curated reviews and comparisons of cryptocurrency-based casinos, particularly Bitcoin gambling sites. The site targets adult users interested in crypto gambling, offering information on bonuses, fast withdrawals, and game selections. The business model appears to be affiliate marketing and content curation within the crypto gambling sector. Technically, the website is built on WordPress, utilizing popular SEO and analytics tools such as Yoast SEO, Google Tag Manager, Microsoft Clarity, and Visual Website Optimizer, indicating a moderate level of digital maturity and performance optimization. Security-wise, the site enforces HTTPS and uses asynchronous loading of tracking scripts, but lacks visible security headers and formal privacy or cookie policies, which are areas for improvement. The absence of WHOIS data and registrant information introduces uncertainty about domain legitimacy, which impacts overall trust. Strategic recommendations include enhancing transparency with privacy and cookie policies, implementing security headers, and clarifying domain registration details to improve business credibility and compliance.

T

Top Mania de Premios

sortemaniadepremios.com.br

51

Top Mania de Premios is an online lottery platform targeting Brazilian users, offering various lottery games with instant results and payment via PIX. The website is built using modern technologies such as Astro and integrates Google Tag Manager for analytics. The platform emphasizes trustworthiness and legal compliance but lacks publicly available privacy, cookie, or terms of service policies. Security posture is moderate with HTTPS enabled but missing important security headers and incident response information. Overall, the site is well designed, mobile optimized, and provides clear content relevant to its business model. However, the absence of contact information and privacy compliance details reduces user trust and regulatory compliance.

C

Online Casino Reviews in US 2025 | CasinoRoom

casinoroom.com

66

CasinoRoom.com is an established online platform specializing in providing reviews and information about online casinos, primarily targeting the US market. The website offers detailed content on gambling sites, bonuses, and industry trends, positioning itself as a niche content provider in the online gambling sector. The business model appears to be content publishing with affiliate marketing elements, focusing on adult users interested in online gambling. Technically, the site is built on WordPress, leveraging modern tools such as Google Tag Manager and Visual Website Optimizer for analytics and optimization. The domain is well-established, created in 2004, and uses reputable services like GoDaddy and Cloudflare for domain registration and DNS management. Security-wise, the site uses HTTPS and has domain status protections but lacks visible security headers and formal security policies. Privacy compliance is basic, with a cookie consent mechanism present but no explicit privacy or terms of service pages detected. Overall, the site demonstrates moderate technical maturity and business credibility but would benefit from enhanced security and privacy documentation.

P

Pubtech.ai

pubtech.ai

52

Pubtech.ai is an AdTech company specializing in providing monetization, intelligence, and consent management solutions tailored for digital publishers ranging from small to enterprise scale. The company positions itself as a trusted partner with over 150 publishers and notable certifications such as Google Certified CMP. Their website reflects a professional and consistent brand image with clear service offerings and a focus on innovation in the digital publishing space. Technically, the site is built on WordPress with modern plugins and scripts, optimized for SEO and mobile responsiveness, though performance is moderate. Security posture is solid with HTTPS and anonymized analytics, but could benefit from enhanced security headers and published incident response policies. Privacy compliance is well addressed with GDPR-aligned policies and consent mechanisms. Overall, the website and business present a credible and trustworthy profile with room for technical and security improvements.

Z

Zeppelin

zeppelin-group.com

59

Zeppelin is a specialized technology company offering an intelligent Hotel Marketing Platform designed to enhance hotel websites, online marketing, content creation, and sales optimization. The company targets the hospitality industry with a B2B SaaS business model, positioning itself as a niche provider in hotel marketing technology. The website is built on TYPO3 CMS and integrates modern marketing and analytics tools such as Google Tag Manager, HubSpot, Hotjar, and Usercentrics for consent management. The technical infrastructure reflects a moderate level of digital maturity with good mobile optimization and SEO practices. Security posture is strong with HTTPS enforcement and appropriate security headers, although explicit security policies and incident response information are not publicly available. Privacy compliance is basic, with a cookie consent mechanism present but lacking a visible privacy policy or terms of service. Overall, Zeppelin's website is professional and trustworthy but would benefit from enhanced transparency in privacy and contact information.

C

CDNLogo.com

cdnlogo.com

57

CDNLogo.com operates as a specialized platform offering a vast collection of brand logo vectors available for free download in multiple formats including SVG, EPS, AI, and PNG. The site targets designers and users seeking high-quality brand logos without login requirements, positioning itself as one of the largest repositories in this niche. The business model revolves around free access combined with user-submitted logos and monetization through Google Adsense advertising. The multilingual support and extensive logo catalog indicate a mature digital presence since its founding in 2017. Technically, the website employs a modern tech stack including jQuery, Bootstrap, Google Fonts, and Google Tag Manager, hosted on AWS infrastructure. The site demonstrates good mobile optimization and SEO practices with structured data and hreflang tags. Performance is moderate with room for improvement in accessibility features. Security posture is adequate with HTTPS enforced and domain transfer protection, but lacks DNSSEC and security headers, which are recommended for enhanced protection. Security-wise, the absence of explicit privacy, cookie, and security policies, as well as contact information, represents compliance and trust gaps. The site uses Google advertising and tracking services, indicating moderate user tracking. No vulnerabilities or malware indicators were found, but improvements in transparency and security best practices are advised. Overall, CDNLogo.com is a functional and professional platform with a strong content offering but requires enhancements in privacy compliance, security policies, and contact transparency to improve trust and regulatory adherence.

N

Notre Territoire

notre-territoire.com

45

Notre Territoire is a French website specializing in publishing public inquiry notices across France, serving as a primary source of information for citizens interested in administrative and public consultation processes. The platform offers free access to notices, search by city or region, and filtering options to refine inquiries. Technically, the website employs modern analytics tools such as Google Analytics and Matomo, integrates bot protection via DataDome, and uses reCAPTCHA for form security. The site is well-optimized for mobile and accessibility, with a professional design and clear navigation. Security posture is strong with HTTPS enforced and bot mitigation in place, though some HTTP security headers and explicit security policies are not evident. Privacy compliance is addressed through a cookie consent banner and a privacy policy page, indicating GDPR awareness. However, the absence of WHOIS data raises concerns about domain registration legitimacy, and no direct contact or incident response information is visible, which could impact trust. Overall, the website is functional, professional, and serves its niche well but would benefit from enhanced transparency and domain registration verification.

M

miLibris

milibris.com

57

miLibris is a French-based digital publishing technology company established in 2009, specializing in enhancing and distributing digital content across web and mobile platforms. The company positions itself as an industry leader with a focus on providing tailored digital transformation solutions and reliable e-reader platforms to content publishers and media organizations. The website reflects a professional and consistent brand image targeting B2B clients in the media and technology sectors. Technically, the site uses modern frameworks such as Next.js and integrates marketing and analytics tools like HubSpot and Google Tag Manager, indicating a mature digital infrastructure. Security posture is adequate with HTTPS and cookie consent mechanisms in place, but lacks some advanced security headers and explicit security policies. The absence of WHOIS data for the main domain raises concerns about domain registration legitimacy, although the website content and contact information suggest a legitimate business. Overall, miLibris demonstrates a solid digital presence with room for improvement in privacy transparency and security best practices.

H

HIRELLO

hirello.fr

43

Hirello is a small French digital agency based in Auray specializing in website creation, SEO, and SEA services. The company positions itself as a partner for businesses seeking to enhance their online presence and growth through well-designed, performant websites and targeted digital marketing campaigns. The website demonstrates a professional and consistent brand image with a portfolio showcasing recent client projects. Technically, the site is built on WordPress using Elementor and Yoast SEO, with integrations for Matomo analytics and Google Tag Manager, indicating a mature digital infrastructure. Security posture is adequate with HTTPS enabled but lacks explicit security headers and formal privacy or cookie policies, which are areas for improvement. The domain WHOIS data is privacy protected, which is typical for small agencies and does not raise immediate concerns. Overall, Hirello presents as a credible and professional digital agency with room to enhance privacy compliance and security best practices.

R

Renaissance Numérique

renaissancenumerique.org

65

Renaissance Numérique is an independent, non-partisan French think tank dedicated to the digital transformation of society. The organization produces research publications, hosts events, and provides policy recommendations focused on digital governance, inclusion, AI, and technological sovereignty. The website reflects a professional and consistent brand image targeting policymakers, digital stakeholders, and engaged citizens. Technically, the site is built on WordPress with modern plugins such as Gravity Forms and Yoast SEO, and uses Matomo for analytics, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response information are absent. WHOIS data is unavailable due to a malformed query, which slightly reduces trust but is common for privacy reasons. Overall, the site is well-designed, content-rich, and compliant with GDPR, positioning Renaissance Numérique as a credible and authoritative entity in its sector.

C

CFS+

cfsplus.fr

71

CFS+ is a French company specializing in consulting and certification services for professionals in the training sector. Their website emphasizes support for national certification compliance and registration of professional titles, positioning them as a niche service provider in education. The company appears to have been active since at least 2019, with a focused business model targeting training professionals seeking certification and funding compliance. Technically, the website is built on WordPress using the Astra theme and several plugins including SureCart and Yoast SEO, indicating a modern and maintainable infrastructure. The site is mobile-optimized and includes SEO best practices such as structured data and meta tags. Security-wise, the site uses HTTPS and integrates consent frameworks and analytics tools like Google Tag Manager and Matomo. However, it lacks visible security headers and explicit privacy or terms of service pages, which are areas for improvement. WHOIS data is unavailable, which slightly reduces trustworthiness but the professional content and social media presence support legitimacy. Overall, the site is functional and professional but could enhance compliance and security transparency.

G

Go.Asia

go.asia

54

Go.Asia is a non-profit digital platform dedicated to promoting social good, charity projects, and community engagement across Asia. The website serves as a hub for charity profiles, inspirational stories, and project information aimed at encouraging public involvement in social causes. The platform targets a general audience interested in philanthropy and community development. Technically, the site is built on WordPress using the Extra theme and integrates Google Analytics and Tag Manager for visitor tracking. The site is mobile-optimized with a moderate performance profile and basic accessibility features. Security-wise, the site enforces HTTPS but lacks advanced security headers and a vulnerability disclosure mechanism. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks a cookie consent mechanism. WHOIS data is unavailable due to query failure, but the site appears legitimate based on content and active maintenance. Overall, Go.Asia presents a professional and trustworthy platform for non-profit engagement with room for security and privacy improvements.

S

Solothurner Filmtage

solothurnerfilmtage.ch

57

Solothurner Filmtage is a well-established Swiss film festival dedicated to showcasing Swiss cinema and supporting filmmakers. The website serves as a comprehensive platform for festival programming, industry offerings, media information, and ticketing services. It targets film professionals, media representatives, and the general public interested in Swiss film culture. The business model revolves around event organization, cultural promotion, and partnerships with sponsors and media entities. Technically, the website employs modern JavaScript libraries and analytics tools, ensuring good performance and mobile optimization. Security posture is strong with HTTPS and security headers, though it lacks visible cookie consent mechanisms and a published security policy. Overall, the site is professional, trustworthy, and compliant with GDPR in terms of privacy policy availability, but could improve transparency on cookie usage and incident response.

Z

Zurich Film Festival

zff.com

60

The Zurich Film Festival (ZFF) is a well-established non-profit cultural organization that hosts an internationally recognized film festival in Zurich, Switzerland. The website serves as a comprehensive platform for festival information, ticket sales, event schedules, and merchandise. It targets film enthusiasts, industry professionals, and cultural supporters, offering a rich program of auteur films, side events, and exclusive memberships. The festival enjoys strong partnerships with reputable brands such as UBS, Mercedes-Benz, and NZZ, reinforcing its market position. Technically, the website is built on modern frameworks including Next.js and React, with integration of Shopify for e-commerce and DatoCMS for content management. It leverages Cloudflare DNS and CDN services, ensuring fast performance and good mobile optimization. The site implements privacy compliance mechanisms such as Cookiebot for cookie consent and maintains comprehensive legal documentation. Analytics and marketing tools like Google Analytics, Facebook Pixel, and Google Tag Manager are used with user consent. From a security perspective, the site enforces HTTPS, uses clientTransferProhibited domain status, and employs cookie consent for privacy. However, DNSSEC is not enabled, and no explicit security.txt or incident response contacts are published. No vulnerabilities or exposed sensitive data were detected. Overall, the security posture is strong but could be improved with additional DNS security and public vulnerability disclosure. The overall risk assessment is low, with the website demonstrating professionalism, trustworthiness, and compliance with GDPR. Strategic recommendations include enabling DNSSEC, publishing a security.txt file, and enhancing security headers. These steps will further strengthen the site's security and trustworthiness for users and partners.

F

Filmarchiv Austria

filmarchiv.at

54

Filmarchiv Austria is Austria's national film archive and cultural institution dedicated to the collection, documentation, preservation, and presentation of the country's film heritage. The organization operates a professional website offering film screenings, archival access, virtual exhibitions, and educational content targeting film enthusiasts, researchers, and the general public. The website demonstrates a high level of digital maturity, employing modern web technologies such as the Elixir Phoenix framework, Alpine.js, and Swiper.js, alongside privacy tools like Klaro for cookie consent. The site is well-structured, mobile-optimized, and provides rich multimedia content including videos and images. Security posture is solid with HTTPS enforcement and CSRF protection, though some security headers could be improved. Privacy compliance is strong with a clear privacy policy and cookie consent mechanism. No WHOIS data was available from NIC.AT, likely due to privacy protection, which is reasonable for this type of institution. Overall, the website is trustworthy, professional, and serves its cultural mission effectively.

D

D'Filmakademie

dfilmakademie.lu

52

D'Filmakademie is a Luxembourg-based film academy dedicated to promoting cinema and audiovisual arts within the country. It organizes key cultural events such as the Lëtzebuerger Filmpräis, supports film professionals, and fosters community engagement through various activities and membership programs. The organization holds a significant position in Luxembourg's cultural landscape, supported by official sponsors including the Chamber of Commerce Luxembourg, CNA, and FilmFund Luxembourg. Technically, the website is built on WordPress, utilizing modern plugins and frameworks such as WPBakery Page Builder, Smart Slider 3, and Contact Form 7. It employs standard web technologies including jQuery, Tailwind CSS, and integrates Google Analytics and Tag Manager for analytics. Hosting is provided by OVH, a reputable provider. The site is mobile-optimized with good SEO practices and a professional design. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism compliant with GDPR. However, it lacks explicit security headers and publicly available security policies or incident response documentation. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns with the hosting provider and shows no suspicious patterns, supporting the legitimacy of the domain. Overall, the website demonstrates a strong commitment to privacy compliance and user experience, with clear contact information and trust indicators. Strategic improvements include enhancing security headers, publishing security policies, and adding vulnerability disclosure mechanisms to further strengthen the security posture.

N

novomind

novomind.com

65

novomind AG is a technology company specializing in software solutions for digital commerce and customer service. Their portfolio includes products for digital commerce platforms, customer service software, AI agents, and data platforms, targeting businesses seeking to enhance their digital sales and customer interaction capabilities. The company positions itself as a comprehensive provider offering both software products and professional services such as integration, long-term support, and custom software development. The website reflects a professional and modern digital presence, indicating a medium-sized enterprise based in Germany with a clear B2B focus. Technically, the website is built on WordPress using the Elementor page builder, incorporating modern web technologies such as jQuery and Google Tag Manager for analytics and marketing. The site is mobile-optimized and includes GDPR-compliant cookie consent management via Usercentrics. Performance is moderate with good SEO and accessibility basics, though some improvements in accessibility could be made. From a security perspective, the site enforces HTTPS and uses consent management for tracking scripts, but lacks explicit published security policies or incident response information. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data for the domain reduces the overall trust score, as it prevents verification of domain ownership and age, which is unusual for a professional business domain. Overall, novomind AG presents a trustworthy and professional digital commerce software provider with a solid technical foundation and good privacy compliance. Strategic recommendations include enhancing security transparency, publishing incident response and vulnerability disclosure policies, and improving WHOIS data transparency to strengthen trust and compliance posture.

B

BVMW - Bundesverband mittelständische Wirtschaft

bvmw.de

56

BVMW (Bundesverband mittelständische Wirtschaft) is a prominent German association representing small and medium-sized enterprises (SMEs) and self-employed professionals. The organization focuses on networking, advocacy, and providing support services to the Mittelstand sector in Germany. Their website reflects a mature digital presence with comprehensive content, professional design, and clear navigation tailored to their target audience of SMEs. The business model centers on membership services, events, and industry representation, positioning BVMW as a leading voice for the German Mittelstand.

K

Kanne Brottrunk

kanne-brottrunk.de

42

Kanne Brottrunk is a German company specializing in the production and sale of organic fermented bread drink products, with a history spanning approximately 35 years. The website targets health-conscious consumers interested in vegan and organic beverages. The business operates primarily in the retail sector, emphasizing natural and alcohol-free products. The website demonstrates consistent branding and good content quality, supporting its market position as an established organic health beverage provider. Technically, the website employs modern technologies including Google Tag Manager, Cookiebot for GDPR-compliant cookie management, and Google reCAPTCHA for bot protection. The site is served over HTTPS, ensuring secure communication. While no explicit CMS or hosting provider is identified, the site shows moderate performance and good mobile optimization. SEO and accessibility features are basic to good. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms aligned with GDPR. However, some common security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected, representing an area for improvement. No vulnerabilities or exposed sensitive data were found. The site lacks a published security policy or incident response contact, which could enhance trust and compliance. Overall, the website is safe, professional, and trustworthy, with no adult or questionable content. The domain registration data is consistent with the business claims, supporting legitimacy. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and providing clearer contact information to improve user trust and compliance.

O

OFFICE Partner

office-partner.de

68

OFFICE Partner is a German-based e-commerce retailer specializing in office technology and supplies, including printers, monitors, and consumables. The website targets business customers and office supply purchasers within Germany, offering convenient payment options such as invoice and installment purchases. The company appears to have been established around 2014 and maintains a consistent brand presence with integration of trusted third-party services like Trusted Shops and Amazon Payments. Technically, the website is built on the Shopware CMS platform and utilizes modern JavaScript libraries and analytics tools including Google Tag Manager, econda, and Microsoft UET. The site demonstrates good mobile optimization and accessibility features, with a moderate performance profile. Hosting is provided via Creoline Server, as indicated by the nameservers. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Privacy compliance is partial, with cookie consent present but no visible privacy or terms of service pages. Overall, OFFICE Partner presents a professional and trustworthy e-commerce platform with room for improvement in privacy disclosures and security transparency. Strategic enhancements in these areas would strengthen compliance and customer trust.

H

Hohenzollern Apotheke

hohenzollern-apotheke.de

50

Hohenzollern Apotheke operates as a local pharmacy business with three physical locations in Münster, Germany, providing retail pharmacy services and customer consultation. The website targets local customers seeking pharmaceutical products and services, emphasizing extended opening hours and good customer service. The business model is retail-focused with a clear local market presence. Technically, the website employs modern web technologies such as Google Tag Manager, Cookiebot for cookie consent management, and Google reCAPTCHA for bot protection. The CMS appears to be ProcessWire, and hosting is managed via DomainControl nameservers, likely GoDaddy. The website is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit policies are missing. Privacy compliance is partial, with a cookie consent banner but no visible privacy policy or terms of service pages. No contact information or data protection officer details are found, which limits transparency. Overall, the website is functional and professional but would benefit from enhanced privacy and security disclosures to improve trust and compliance.

S

Stadtwerke Münster

stadtwerke-muenster.de

64

Stadtwerke Münster is a large regional public utility provider based in Münster, Germany, offering essential services such as energy supply, public transportation, water, and waste management. The company positions itself as a local solution provider addressing global challenges, targeting residents and businesses within the Münster region. The website reflects a professional and consistent brand image with good content quality and user experience tailored for its audience. Technically, the site leverages modern technologies including Pimcore CMS, Google Tag Manager, and Cookiebot for consent management, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is well addressed with a comprehensive cookie policy and GDPR-aligned consent management. Overall, the site demonstrates high trustworthiness and business credibility, with room for enhancements in security policy transparency and incident response disclosures.

L

lanius.com

lanius.com

73

lanius.com is a professional e-commerce website specializing in sustainable and fair fashion since 1999. The company positions itself as a medium-sized retailer focused on organic and ethically produced clothing, targeting environmentally conscious consumers. The website is built on the Shopify platform, leveraging modern web technologies and integrations with marketing and analytics tools such as Klaviyo and Facebook Pixel. The site demonstrates strong digital maturity with excellent design, mobile optimization, and user experience. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security policies and incident response contacts are not found. The absence of WHOIS data for the domain reduces trustworthiness slightly but does not detract significantly from the professional presentation and compliance indicators. Overall, the website is a credible and well-maintained online retail platform with a focus on sustainability.

R

Remmers

remmers.de

71

Remmers GmbH is a well-established family-owned manufacturing company specializing in innovative system solutions for the construction and woodworking industries. With over 75 years of tradition, the company offers a broad portfolio including building protection, wood coatings, flat roof solutions, and tools. The website reflects a mature digital presence with comprehensive product information, strong branding, and multi-language support across 21 countries. Technically, the site leverages modern JavaScript libraries, SAP Commerce platform, and cloud hosting, ensuring good performance and mobile optimization. Security posture is solid with HTTPS, secure login forms, and consent management, though explicit security headers could be improved. The absence of WHOIS data is a minor concern but does not detract significantly from the overall trustworthiness given the professional content and certifications. Strategic recommendations include enhancing security headers, publishing incident response contacts, and establishing a vulnerability disclosure policy.

R

Rapunzel Naturkost GmbH

rapunzel.de

46

Rapunzel Naturkost GmbH is a well-established German company specializing in the production and retail of organic and fair trade food products since 1974. The company operates both B2B and B2C channels, including a webshop and a visitor center called Rapunzel Welt. Their market position is strong within the organic food sector, supported by certifications such as Bio and Demeter, and a dedicated fair trade program called HAND IN HAND. The website reflects a mature digital presence with comprehensive product information, recipes, and sustainability initiatives targeting consumers interested in organic lifestyles. Technically, the website uses a modern tech stack including Bootstrap, jQuery, Font Awesome, and integrates a consent management platform (Usercentrics) alongside Google Tag Manager for analytics. The site is mobile optimized, accessible, and SEO friendly, though performance is moderate. Security posture is good with HTTPS enforced and privacy compliance mechanisms in place, but lacks explicit security policies or vulnerability disclosure channels. Overall, the security posture is solid with no visible vulnerabilities or exposed sensitive data. The WHOIS data aligns with the business claims, showing a consistent and legitimate domain registration. The website is safe for general audiences with no adult or questionable content detected. Strategically, Rapunzel Naturkost should enhance its security transparency by publishing a security policy and incident response contacts, implement security headers, and consider a vulnerability disclosure program to further strengthen trust and compliance.

I

ibau GmbH

ibau.de

55

ibau GmbH operates a specialized information service focused on tenders and contracts within the construction industry in Germany. The company provides subscription-based access to relevant business opportunities, targeting decision makers in the construction sector. The website is professionally designed, with good content quality and clear navigation, catering to business professionals seeking procurement information. Technically, the site employs modern JavaScript libraries, Google Tag Manager, Cookiebot for consent management, and integrates marketing and analytics tools such as HubSpot and Hotjar. The site is mobile optimized and accessible, with good SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security policies and incident response information are not published. The domain registration uses privacy and brand protection name servers, which is typical for such businesses and does not raise concerns. Overall, the website is trustworthy, compliant with GDPR, and provides a professional user experience.

E

Entsorgungsgesellschaft Krefeld GmbH & Co. KG

egk.de

62

The Entsorgungsgesellschaft Krefeld GmbH & Co. KG (EGK) is a regional municipal waste management and environmental services company based in Krefeld, Germany. The company operates a unique combination of waste incineration and sewage treatment plants, generating electricity and district heating for thousands of households. Additionally, EGK maintains an accredited laboratory for water and waste analysis and serves as a significant local employer with approximately 250 staff members. The website reflects a well-structured and professional digital presence, targeting local residents, businesses, and potential employees. It emphasizes environmental responsibility, energy production, and community engagement. Technically, the site is built on modern frameworks such as Next.js and React, with integrations for cookie consent (Usercentrics) and analytics (Google Tag Manager, Microsoft Application Insights). Security best practices are observed with HTTPS enforcement and security headers, although explicit security policies and incident response information are not published. Overall, the site is trustworthy, compliant with GDPR, and provides clear information about services and career opportunities.

G

GELSENWASSER AG

gelsenwasser.de

65

Gelsenwasser AG is a large German infrastructure company specializing in sustainable water supply, wastewater management, energy procurement and distribution, digital infrastructure, and circular economy solutions. The company targets municipalities, businesses, and consumers primarily in Germany, positioning itself as a regional leader with a strong sustainability focus. The website is professionally designed, mobile-optimized, and provides comprehensive information about the company's business fields, services, and customer offerings. Technically, the site uses TYPO3 CMS, integrates Google Tag Manager for analytics, and employs a robust cookie consent mechanism ensuring GDPR compliance. Accessibility features such as Eye-Able tools enhance usability. Security posture is good with HTTPS enforced and no visible vulnerabilities, though the site lacks a dedicated security policy or incident response information. Overall, the website reflects a mature digital presence with strong business credibility and compliance adherence.

S

Sterzing Südtirol: Urlaub in der Alpinstadt mit Charme

sterzing.com

52

The website www.sterzing.com is a professionally designed tourism portal focused on promoting the Sterzing region in South Tyrol, Italy. It provides comprehensive information about local attractions, events, accommodations, and activities targeting tourists and visitors interested in mountain vacations. The site uses a modern CMS (Consisto CMS) and integrates common web technologies including Google Tag Manager and Google Analytics for tracking and marketing purposes. The content is well-structured with clear navigation and good mobile optimization, supporting a positive user experience. However, the absence of WHOIS data raises concerns about domain registration legitimacy, which should be verified to ensure trustworthiness. Security posture is strong with HTTPS enforced and secure form handling, but privacy and cookie policies are not explicitly found, indicating room for compliance improvement. Overall, the site is suitable for general audiences with no adult or questionable content detected.

R

Skigebiet Rosskopf: Wandern Skifahren & Rodeln in Sterzing Südtirol

rosskopf.com

52

The website www.rosskopf.com represents a tourism and outdoor activity business focused on the Rosskopf ski and hiking area in Sterzing, South Tyrol, Italy. It offers information about skiing, hiking, tobogganing, and accommodation booking services. The site is professionally designed with good navigation and mobile optimization, leveraging modern technologies such as Consisto CMS, Google Analytics, and Tag Manager. Security posture is solid with HTTPS and security headers, though some headers like CSP are missing. Privacy compliance is limited, with no explicit privacy or cookie policies detected in the analyzed content. The WHOIS data is unavailable, which raises concerns about domain registration legitimacy but does not necessarily indicate malicious intent. Overall, the site appears trustworthy and suitable for general audiences interested in tourism in South Tyrol.

S

Super Partners

superpartners.com

62

Super Partners is a well-established affiliate marketing platform specializing in casino and sports betting brands. With a domain age dating back to 1999 and strong parent company ties to Super Group, it holds a reputable market position. The website showcases a comprehensive portfolio of globally recognized brands and partnerships with major sports teams, reflecting a mature and professional business model. Technically, the site leverages modern frameworks like Next.js and React, with Cloudflare DNS and robust analytics integrations, ensuring a fast, responsive, and accessible user experience. Security posture is strong with HTTPS enforcement and security headers, though DNSSEC is not enabled. Privacy compliance is evident with clear privacy and cookie policies and GDPR adherence. Overall, the site presents a trustworthy and professional front for affiliates and partners in the iGaming industry.

B

Baytree Interactive Ltd

royalvegascasino.com

57

Royal Vegas Casino is an established online gambling platform operated by Baytree Interactive Ltd, licensed by the Kahnawake Gaming Commission. The website offers a wide range of casino games including slots, table games, live dealer experiences, and progressive jackpots, targeting adult players globally. The platform supports multiple trusted payment methods and provides a loyalty rewards program to enhance player engagement. The website is professionally designed with good content quality and mobile optimization, reflecting a mature digital presence. Technically, the site employs modern JavaScript libraries such as jQuery and Swiper.js, integrates Google Tag Manager and analytics tools, and uses a custom ePrivacy plugin for cookie consent management. The site is fully accessible without WAF or security blocks, uses HTTPS with strong SSL configuration, and displays multiple trust certifications including eCogra and responsible gaming badges. However, some security best practices like HTTP security headers and incident response contacts are not explicitly visible. From a security perspective, the platform demonstrates a solid posture with encrypted connections, secure payment integrations, and privacy compliance including GDPR indicators. The absence of WHOIS domain registration data is a concern but may be due to privacy protection. Overall, the site is trustworthy with moderate risk, suitable for adult users interested in online casino gaming. Strategic recommendations include enhancing security headers, publishing a security.txt file, providing explicit incident response contacts, and improving accessibility compliance to further strengthen trust and security.

A

Astra

astrabx.com

64

Astra Brixen is a cultural non-profit center located in Brixen, Italy, focused on providing a platform for cultural exchange, artistic experimentation, and production. Managed by the Verein Jugendhaus Kassianeum, it serves artists, collectives, and cultural organizations, offering event spaces and hosting film screenings. The website reflects a local cultural hub with a clear mission and target audience of young and engaged cultural actors. Technically, the site is built on WordPress with common plugins for event management and GDPR compliance, leveraging Google Tag Manager for analytics. Security posture is generally good with HTTPS enabled and cookie consent mechanisms in place, though DNSSEC is not enabled and no explicit security policies or vulnerability disclosures are published. Overall, the site is professional, trustworthy, and compliant with GDPR, suitable for its non-profit cultural mission.

B

Brixen Tourism / Brixen.org

brixen.org

46

The website www.brixen.org is a regional tourism portal dedicated to promoting holidays in Brixen, Italy, located in South Tyrol. It provides comprehensive information about local attractions, outdoor activities, cultural events, and accommodation options. The site targets tourists and holidaymakers interested in exploring the region's natural and cultural offerings. The business model focuses on tourism promotion and facilitating holiday planning through rich content and booking links. The website is positioned as an important regional player in the hospitality sector, leveraging official regional tourism branding and consistent design. Technically, the site is built on the TYPO3 CMS platform, integrating modern marketing and analytics tools such as Google Tag Manager, Hotjar, and Usercentrics for cookie consent management. The site demonstrates good mobile optimization and SEO practices, although performance is moderate. The technical infrastructure is solid but could benefit from enhanced security headers and clearer privacy documentation. From a security perspective, the website enforces HTTPS and uses cookie consent mechanisms, which are positive indicators. However, the absence of explicit privacy policy and terms of service pages, lack of security.txt or vulnerability disclosure information, and missing WHOIS transparency reduce the overall security posture. No WAF or blocking mechanisms were detected, and no vulnerabilities were apparent in the provided content. The domain WHOIS data is incomplete or malformed, limiting trust verification. Overall, the website is a professional and trustworthy tourism information portal with good content quality and user experience. Strategic improvements in privacy compliance, security headers, and WHOIS transparency would enhance trust and security posture. The risk level is moderate with no critical issues detected.

T

Tinexta Infocert S.p.A.

legalmail.it

75

Tinexta Infocert S.p.A. operates the website www.legalmail.infocert.it, providing certified electronic mail (PEC) services primarily targeting business and individual users in Italy. The company is positioned as a leading provider in the Italian market for certified email solutions, offering customizable and comprehensive PEC mailboxes. The website content is professional, well-structured, and consistent with the corporate branding of Tinexta Infocert. The business model focuses on digital communication services with a strong emphasis on legal and certified email solutions.

L

La Maison du Bien-Être

bien-etre-massages.be

10

La Maison du Bien-Être is a small, recently founded wellness center located in Namur, Belgium, specializing in a variety of massage therapies including relaxing, therapeutic, sports, and aromatherapy massages. The business also offers private cabin rentals for wellness professionals. The website presents a professional and comprehensive digital presence with clear service descriptions, customer testimonials, and multiple contact channels. The company holds relevant certifications such as IFAPME, enhancing its credibility in the local market. Technically, the website uses modern web technologies including jQuery, Google Tag Manager, and service workers for PWA capabilities. It is mobile-optimized with good SEO practices and accessibility features, although some security headers are missing. Privacy compliance is well addressed with clear privacy and cookie policies and a consent mechanism. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but the absence of WHOIS transparency and security.txt reduces trust. The WHOIS data is restricted by the registry, showing a 'NOT ALLOWED' status, which is common for .be domains but impacts domain legitimacy assessment. Overall, the website is trustworthy and professional, serving its target audience effectively. Strategic improvements in security headers and transparency would further enhance trust and compliance.

G

G-E Motors

garage-gemotors.be

58

G-E Motors is a small, locally focused automobile garage based in Aubel, Belgium, specializing in vehicle maintenance, repair, diagnostics, and sales of used cars. The company emphasizes a personalized, family-oriented approach and rapid vehicle delivery, positioning itself as a trusted partner for local customers. The website is professionally designed, mobile-optimized, and rich in relevant content, reflecting a mature digital presence for a small business. Technically, the site uses modern JavaScript libraries, Google Tag Manager, and reCAPTCHA for security and analytics, with a service worker for progressive web app capabilities. Security posture is good with HTTPS enforced and privacy mechanisms in place, though some security headers could be improved. WHOIS data is unavailable due to registry restrictions, which is common for .be domains, but the website content and business information support legitimacy. Overall, the site presents a trustworthy and professional image with strong business credibility and compliance with privacy regulations.

C

CONSTRUCTS SOLUTIONS

construct-solutions-renovation.be

57

CONSTRUCTS SOLUTIONS is a small, established construction and renovation company based in Belgium, serving Brussels and surrounding areas. With over 30 years of experience, it offers a comprehensive range of services including new construction, complete renovation, electrical work, plumbing, and exterior and interior works. The company emphasizes quality, compliance with standards, and customer satisfaction. The website is professionally designed, mobile-optimized, and includes structured data for local business identification. Technically, it uses modern web technologies such as jQuery, Google Tag Manager, and reCAPTCHA to enhance user experience and security. Security posture is good with HTTPS and CAPTCHA protections, though some security headers and explicit policies are missing. Privacy and cookie policies are present and GDPR compliant. WHOIS data is unavailable due to registry restrictions, which slightly impacts trust but the website content and business information appear legitimate and professional.

C

Cabinet Fabre Avocat

cabinetfabre-avocats.fr

55

Cabinet Fabre Avocat is a specialized law firm based in Montigny-le-Bretonneux, France, with over 20 years of experience in criminal law and personal injury indemnification. The firm focuses on defending victims and accused parties with a rigorous and strategic approach, serving clients primarily in the Yvelines region. Their services include criminal defense, victim support, road traffic law, and legal consultation. The website reflects a professional and modern legal practice with strong client testimonials and certifications, positioning the firm as a trusted local legal expert. Technically, the website employs modern web technologies such as jQuery, Google Tag Manager, Google reCAPTCHA, and service workers for PWA capabilities. It is well-optimized for SEO, mobile-friendly, and includes accessibility features. Security practices include HTTPS enforcement and spam protection on forms, although some security headers could be improved. Privacy and cookie policies are present and GDPR compliant, enhancing user trust. The security posture is solid with no detected vulnerabilities or exposed sensitive data. However, the WHOIS data for the domain is unavailable, which limits verification of domain registration details and raises a moderate concern about domain legitimacy. Despite this, the website content and business information strongly support the firm's credibility. Overall, the website is professional, secure, and user-friendly, serving its target audience effectively. Strategic improvements in security headers and domain registration transparency are recommended to further enhance trust and compliance.